1 of 47

Typescript

Classes

@didpass/zkpass-client-ts

Classes

DataVerificationRequest
ZkPassApiKey
ZkPassClient
ZkPassFfiR0

Class: DataVerificationRequest

This class is typically created by the Proof Verifier client, and the DVR represents a request to verify certain attributes or properties of a user data.

Constructors

constructor

• new DataVerificationRequest(dvrTitle, dvrId, queryEngineVer, queryMethodVer, query, userDataRequests, dvrVerifyingKey?): DataVerificationRequest

Parameters

Returns

DataVerificationRequest

Properties

dvrId

• dvrId: string

The unique id of the DVR

dvrTitle

• dvrTitle: string

The title of the DVR

dvrVerifyingKey

• Optional dvrVerifyingKey: PublicKeyOption

The verifying key of the DVR

query

• query: ZkpassQuery

The zkPass Query script

queryEngineVer

• queryEngineVer: string

The version of the zkpass query engine used to create the DVR

queryMethodVer

• queryMethodVer: string

The version of the zkpass query method used to create the DVR

userDataRequests

• userDataRequests: UserDataRequests

An object containing one or more user data verifying key and url for the respective user data provided

zkVm

• zkVm: string

The option of zkVM. We're planning to support multiple zkVMs.

This field could be filled with r0

Methods

getSha256Digest

▸ getSha256Digest(): string

Returns the DVR's SHA256 digest

Returns

string

serialize

▸ serialize(): string

Serializes the DVR into JSON string format

Returns

string

serializeJson

▸ serializeJson(): Object

Serializes the DVR into JSON object

Returns

Object

signToJwsToken

▸ signToJwsToken(pem, verifyingKeyJWKS?): Promise<string>

Signs the DVR into JWS token

Parameters

Returns

Promise<string>

deserialize

▸ deserialize(json): DataVerificationRequest

Deserializes JSON string into DVR object

Parameters

Returns

DataVerificationRequest

fromJSON

▸ fromJSON(«destructured»): DataVerificationRequest

Deserializes JSON object into DVR object

Parameters

Returns

DataVerificationRequest

Class: ZkPassApiKey

Constructors

constructor

Methods

getApiToken

Constructors

constructor

• new ZkPassApiKey(apiKey, secretApiKey): ZkPassApiKey

Parameters

Name

Type

Returns

ZkPassApiKey

Properties

apiKey

• Readonly apiKey: string

Unique identifier for accessing ZkPass services

secretApiKey

• Readonly secretApiKey: string

Acts like a password for apiKey and must be kept confidential for secure communication with ZkPass servers

Methods

getApiToken

▸ getApiToken(): string

Returns

string

Class: ZkPassClient

The main class which implements all of the traits defined in this module.

Hierarchy

ZkPassProofVerifier
- ZkPassClient

Implements

ZkPassUtility
ZkPassProofGenerator

Constructors

constructor

Properties

zkPassApiKey
zkPassServiceUrl
zkVm

Methods

decryptJweToken
encryptDataToJweToken
generateZkPassProof
getApiToken
getQueryEngineVersionInfo
signDataToJwsToken
verifyJwsToken
verifyZkPassProofInternal
getFfiWrapper
getKeys
getEncryptionKey
getVerifyingKey

Constructors

constructor

• new ZkPassClient(zkPassServiceUrl, zkPassApiKey, zkVm): ZkPassClient

Parameters

Returns

ZkPassClient

Overrides

ZkPassProofVerifier.constructor

Properties

zkPassServiceUrl

• Private Readonly zkPassServiceUrl: string

Containing the URL address of the ZkPass service

zkPassApiKey

• Private Optional Readonly zkPassApiKey: ZkPassApiKey

Representing a pair of keys (apiKey and secretApiKey) used for accessing ZkPass services securely.

zkVm

• Private Readonly zkVm: string

Representing the user's chosen virtual machine (VM) for interacting with ZkPass services. Currently only support for r0

Methods

decryptJweToken

▸ decryptJweToken(key, jweToken): Promise<JWTDecryptResult>

Decrypts a JWT token

Parameters

Returns

Promise<JWTDecryptResult>

Implementation of

ZkPassUtility.decryptJweToken

encryptDataToJweToken

▸ encryptDataToJweToken(key, data): Promise<string>

Encrypts data into a JWE token

Parameters

Returns

Promise<string>

Implementation of

ZkPassUtility.encryptDataToJweToken

generateZkPassProof

▸ generateZkPassProof(userDataToken, dvrToken): Promise<string>

Generates a ZkPass proof.

This function calls the corresponding RESTful API provided by the zkPass Service, where the query in the DVR is processed and the proof is generated. It encrypts both the signed user data token and the signed DVR token prior to sending it to the zkPass Service.

This function is asynchronous and must be awaited. It’s designed to be used in asynchronous contexts, for example within async functions or blocks.

Parameters

Returns

Promise<string>

Implementation of

ZkPassProofGenerator.generateZkPassProof

getApiToken

▸ getApiToken(): string

Retrieves the API base64 token from the API key and API secret

Returns

string

getQueryEngineVersionInfo

▸ getQueryEngineVersionInfo(): Promise<QueryEngineVersionInfo>

Returns the query engine and method version information

Returns

Promise<QueryEngineVersionInfo>

Implementation of

ZkPassProofVerifier.getQueryEngineVersionInfo

signDataToJwsToken

▸ signDataToJwsToken(signingKey, data, verifyingKeyJwks?): Promise<string>

Signs data into a JWS token

Parameters

Returns

Promise<string>

Implementation of

ZkPassUtility.signDataToJwsToken

verifyJwsToken

▸ verifyJwsToken(key, jwsToken): Promise<JWTVerifyResult>

Verifies the signature of a JWS token

Parameters

Returns

Promise<JWTVerifyResult>

Implementation of

ZkPassUtility.verifyJwsToken

verifyZkPassProofInternal

▸ verifyZkPassProofInternal(zkPassProofToken): Promise<VerifyZkPassProofResult>

Parameters

Returns

Promise<VerifyzkPassProofResult>

Overrides

ZkPassProofVerifier.verifyZkPassProofInternal

getFfiWrapper

▸ Private getFfiWrapper(): ZkPassFfiR0

Get the FFI Wrapper for zkVm

Returns

ZkPassFfiR0

getKeys

▸ getKeys(): Promise<Keys>

Asynchronously fetches and verifies public keys for service signing and encryption from a remote JWKS endpoint.

Returns

Promise<Keys>

getEncryptionKey

▸ getEncryptionKey(): Promise<string>

Asynchronously retrieves the service encryption public key from the getKeys function

Returns

Promise<string>

getVerifyingKey

▸ getVerifyingKey(): Promise<string>

Asynchronously retrieves the service verifying public key from the getKeys function

Returns

Promise<string>

Class: ZkPassFfiR0

Implements

ZkPassFfi

Constructors

constructor

Properties

zkPassQueryFfiR0

Methods

getQueryEngineVersion
getQueryMethodVersion
verifyZkProof

Constructors

constructor

• new ZkPassFfiR0(): ZkPassFfiR0

Returns

ZkPassFfiR0

Properties

zkPassQueryFfiR0

• Private zkPassQueryFfiR0: Object

Type declaration

Methods

getQueryEngineVersion

▸ getQueryEngineVersion(): string

Returns

string

getQueryMethodVersion

▸ getQueryMethodVersion(): string

Returns

string

verifyZkProof

▸ verifyZkProof(receipt): Omit<ZkPassOutput>

Parameters

Returns

Omit<ZkPassOutput>

Class: UserDataRequest

Constructors

constructor

constructor

• new UserDataRequests(user_data_verifying_key, user_data_url?): UserDataRequest

Properties

user_data_verifying_key
user_data_url

Parameters

Name

Type

Returns

UserDataRequest

Properties

user_data_verifying_key

• user_data_verifying_key: PublicKeyOption

The public key information used to verify the signature of the user data.

user_data_url

• Optional user_data_url: string

The url to retrieve the user data referenced by the query.

Interfaces

@didpass/zkpass-client-ts

Interfaces

ZkPassProofGenerator
ZkPassProofMetadataValidator
ZkPassProofVerifier
ZkPassUtility
ZkPassFfi

Interface: ZkPassProofGenerator

Defines a function for generating zkPass Proof

Implemented by

Methods

generateZkPassProof

Methods

generateZkPassProof

▸ generateZkPassProof(userDataTokens, dvrToken): Promise<string>

Parameters

Name

Type

Returns

Promise<string>g

Interface: ZkPassProofMetadataValidator

Defines a callback function for post-ZKP metadata validation on the DVR.

Methods

validate

▸ validate(dvrId): Promise<>

Validates the metadata of a DVR

Parameters

Name

Type

Returns

Promise<>

Abstract: ZkPassProofVerifier

Defines functions for proof verification

Extended by

ZkPassClient

Constructors

constructor

Methods

getQueryEngineVersionInfo
verifyZkPassProof
verifyZkPassProofInternal

Constructors

constructor

• new ZkPassProofVerifier(): ZkPassProofVerifier

Returns

ZkPassProofVerifier

Methods

getQueryEngineVersionInfo

▸ getQueryEngineVersionInfo(): Promise<QueryEngineVersionInfo>

Returns the query engine and method version information

Returns

Promise<QueryEngineVersionInfo>

verifyZkPassProof

▸ verifyZkPassProof(zkPassProofToken, validator): Promise<VerifyZkPassProofResult>

Verifies a zkPass Proof

Parameters

Returns

Promise<VerifyZkPassProofResult>

verifyZkPassProofInternal

▸ verifyZkPassProofInternal(zkPassProofToken): Promise<VerifyZkPassProofResult>

Parameters

Returns

Promise<VerifyZkPassProofResult>

Interface: ZkPassUtility

Defines functions for digital signature and encryption

Implemented by

ZkPassClient

Methods

decryptJweToken
encryptDataToJweToken
signDataToJwsToken
verifyJwsToken
getEncryptionKey
getVerifyingKey

Methods

decryptJweToken

▸ decryptJweToken(key, jweToken): Promise<JWTDecryptResult>

Decrypts a JWT token

Parameters

Returns

Promise<JWTDecryptResult>

encryptDataToJweToken

▸ encryptDataToJweToken(key, data): Promise<string>

Encrypts data into a JWE token

Parameters

Returns

Promise<string>

signDataToJwsToken

▸ signDataToJwsToken(signingKey, data, verifyingKeyJwks?): Promise<string>

Signs data into a JWS token

Parameters

Returns

Promise<string>

verifyJwsToken

▸ verifyJwsToken(key, jwsToken): Promise<JWTVerifyResult>

Verifies the signature of a JWS token

Parameters

Returns

Promise<JWTVerifyResult>

getEncryptionKey

▸ getEncryptionKey(): Promise<string>

Asynchronously retrieves the service encryption public key from the getKeys function

Returns

Promise<string>

getVerifyingKey

▸ getVerifyingKey(): Promise<string>

Asynchronously retrieves the service verifying public key from the getKeys function

Returns

Promise<string>

Abstract: ZkPassFfi

Defines functions for proof verification

Implemented by

Constructors

Methods

Constructors

constructor

• new ZkPassFfi():

Returns

Methods

getQueryEngineVersion

▸ abstract getQueryEngineVersion(): string

Returns the query engine version information

Returns

string

getQueryMethodVersion

▸ abstract getQueryMethodVersion(): string

Returns the query method version information

Returns

string

catchError

▸ catchError<T>(«destructured»): T

Type parameters

Parameters

Returns

T

verifyZkProof

Verifies a zkPass Proof

Parameters

Returns

Interface: UserDataRequests

A mapping containing multiple UserDataRequest

Properties

[tag: `string]`:

Key and value pair, where the key indicates the key to the respective user data, and the value is in the form of which contains the verifying key and URL of the user data.

Type Aliases

Type: ComparisonOperators

Comparison operators used within DVR query

Ƭ ComparisonOperators: "==" | "!=" | "<" | "<=" | ">" | ">=" | "~==" | "~!="

Operators used within DVR query

The operators include:

Operator

Description

Type: KeysetEndpoint

Represents a JWKS (JSON Web Key Set) end point

Ƭ KeysetEndpoint: Object

Type declaration

Name

Type

Description

Type: KeysetEndpointWrapped

A wrapped version of KeysetEndpoint

Ƭ KeysetEndpointWrapped: Object

Type declaration

Name

Type

Type: LogicalOperators

Logical operators used within DVR query

Ƭ LogicalOperators: "and" | "or"

Type: MetadataValidatorResult

The result of Metadata Validator

Ƭ MetadataValidatorResult: Object

Type declaration

Name

Type

Type: MultipleOperator

Logical operators composing nested ZkPassQueries

Ƭ MultipleOperator: { [operator in LogicalOperators]?: ZkPassQuery[] }

Type: Primitive

Primitive data types

Ƭ Primitive: boolean | number | string | object

Type: ProofMethodOutput

Contains the result of a zkPass query

Ƭ ProofMethodOutput: Object

Type declaration

Name

Type

Description

Type: ProofPayload

Proof contents payload

Ƭ ProofPayload: Object

Type declaration

Name

Type

Type: PublicKey

Represents a public key

Ƭ PublicKey: Object

Type declaration

Name

Type

Description

Type: PublicKeyOption

Provides alternative ways to represent a public key

Either the PublicKey or the KeysetEndpoint can be used as a public key. This is useful for sites which do not support JWKS and opts to provide the public key using PublicKey directly.

Ƭ PublicKeyOption: PublicKeyWrapped | KeysetEndpointWrapped

Type: PublicKeyWrapped

A wrapped version of PublicKey

Ƭ PublicKeyWrapped: Object

Type declaration

Name

Type

Type: QueryEngineVersionInfo

Represents the query engine and method version information

Ƭ QueryEngineVersionInfo: Object

Type declaration

Name

Type

Description

Type: SingleOperator

Comparison operators comparing fields and values

Ƭ SingleOperator: { [operator in ]?: [string, string | number] }

Type: ZkPassProof

The value returned by the generate_zkpass_proof API of the zkPass Service

Ƭ ZkPassProof: Object

Type declaration

Name

Type

Description

Type: ZkPassQuery

Ƭ ZkPassQuery: |

Type: ZkPassOutput

The value returned by verifyZkProof method

Ƭ ZkPassOutput: [key: string]: string | number | boolean;

Type: Keys

Represents service signing and encryption public keys as strings.

Ƭ Keys: Object

Name

Type

Description

Errors

Class: CustomError

Custom errors with custom message

Hierarchy

- CustomError

Constructors

constructor

• new CustomError(message?): CustomError

Parameters

Name

Type

Returns

CustomError

Overrides

Class: ExpiredZkPassProof

Errors for ZkPass Proof expiration

Hierarchy

Error
- ExpiredZkPassProof

Constructors

constructor

• new ExpiredZkPassProof(): ExpiredZkPassProof

Returns

ExpiredZkPassProof

Overrides

Error.constructor

Class: InvalidPublicKey

Errors for Invalid public key

Hierarchy

- InvalidPublicKey

Constructors

constructor

• new InvalidPublicKey(): InvalidPublicKey

Returns

InvalidPublicKey

Overrides

Class: JoseError

Errors related to JOSE exceptions

Hierarchy

JOSEError
- JoseError

Constructors

constructor

• new JoseError(message?): JoseError

Parameters

Name

Type

Returns

JoseError

Inherited from

errors.JOSEError.constructor

Class: MissingApiKey

Hierarchy

- MissingApiKey

Constructors

constructor

• new MissingApiKey(): MissingApiKey

Returns

MissingApiKey

Overrides

Class: MismatchedDvrDigest

Errors for DVR Digest mismatch

Hierarchy

Error
- MismatchedDvrDigest

Constructors

constructor

• new MismatchedDvrDigest(): MismatchedDvrDigest

Returns

MismatchedDvrDigest

Overrides

Error.constructor

Class: ZkPassClient

The main class which implements all of the traits defined in this module.

Hierarchy

ZkPassProofVerifier
- ZkPassClient

Implements

ZkPassUtility
ZkPassProofGenerator

Constructors

constructor

Properties

zkPassApiKey
zkPassServiceUrl
zkVm

Methods

decryptJweToken
encryptDataToJweToken
generateZkPassProof
getApiToken
getQueryEngineVersionInfo
signDataToJwsToken
verifyJwsToken
verifyZkPassProofInternal
getFfiWrapper
getKeys
getEncryptionKey
getVerifyingKey

Constructors

constructor

• new ZkPassClient(zkPassServiceUrl, zkPassApiKey, zkVm): ZkPassClient

Parameters

Name

Type

Returns

ZkPassClient

Overrides

ZkPassProofVerifier.constructor

Properties

zkPassServiceUrl

• Private Readonly zkPassServiceUrl: string

Containing the URL address of the ZkPass service

zkPassApiKey

• Private Optional Readonly zkPassApiKey: ZkPassApiKey

Representing a pair of keys (apiKey and secretApiKey) used for accessing ZkPass services securely.

zkVm

• Private Readonly zkVm: string

Representing the user's chosen virtual machine (VM) for interacting with ZkPass services. Currently only support for r0

Methods

decryptJweToken

▸ decryptJweToken(key, jweToken): Promise<JWTDecryptResult>

Decrypts a JWT token

Parameters

Name

Type

Returns

Promise<JWTDecryptResult>

Implementation of

ZkPassUtility.decryptJweToken

encryptDataToJweToken

▸ encryptDataToJweToken(key, data): Promise<string>

Encrypts data into a JWE token

Parameters

Name

Type

Returns

Promise<string>

Implementation of

ZkPassUtility.encryptDataToJweToken

generateZkPassProof

▸ generateZkPassProof(userDataToken, dvrToken): Promise<string>

Generates a ZkPass proof.

This function is asynchronous and must be awaited. It’s designed to be used in asynchronous contexts, for example within async functions or blocks.

Parameters

Name

Type

Returns

Promise<string>

Implementation of

ZkPassProofGenerator.generateZkPassProof

getApiToken

▸ getApiToken(): string

Retrieves the API base64 token from the API key and API secret

Returns

string

getQueryEngineVersionInfo

▸ getQueryEngineVersionInfo(): Promise<QueryEngineVersionInfo>

Returns the query engine and method version information

Returns

Promise<QueryEngineVersionInfo>

Implementation of

ZkPassProofVerifier.getQueryEngineVersionInfo

signDataToJwsToken

▸ signDataToJwsToken(signingKey, data, verifyingKeyJwks?): Promise<string>

Signs data into a JWS token

Parameters

Name

Type

Returns

Promise<string>

Implementation of

ZkPassUtility.signDataToJwsToken

verifyJwsToken

▸ verifyJwsToken(key, jwsToken): Promise<JWTVerifyResult>

Verifies the signature of a JWS token

Parameters

Name

Type

Returns

Promise<JWTVerifyResult>

Implementation of

ZkPassUtility.verifyJwsToken

verifyZkPassProofInternal

▸ verifyZkPassProofInternal(zkPassProofToken): Promise<VerifyZkPassProofResult>

Parameters

Name

Type

Returns

Promise<VerifyzkPassProofResult>

Overrides

ZkPassProofVerifier.verifyZkPassProofInternal

getFfiWrapper

▸ Private getFfiWrapper(): ZkPassFfiR0

Get the FFI Wrapper for zkVm

Returns

ZkPassFfiR0

getKeys

▸ getKeys(): Promise<Keys>

Asynchronously fetches and verifies public keys for service signing and encryption from a remote JWKS endpoint.

Returns

Promise<Keys>

getEncryptionKey

▸ getEncryptionKey(): Promise<string>

Asynchronously retrieves the service encryption public key from the getKeys function

Returns

Promise<string>

getVerifyingKey

▸ getVerifyingKey(): Promise<string>

Asynchronously retrieves the service verifying public key from the getKeys function

Returns

Promise<string>

Typescript

@didpass/zkpass-client-ts

Table of contents

Classes

Interfaces

Type Aliases

Errors

Classes

@didpass/zkpass-client-ts

Table of contents

Classes

Class: DataVerificationRequest

Table of contents

Constructors

Properties

Methods

Constructors

constructor

Properties

dvrId

dvrTitle

dvrVerifyingKey

query

queryEngineVer

queryMethodVer

userDataRequests

zkVm

Methods

getSha256Digest

serialize

serializeJson

signToJwsToken

deserialize

fromJSON

Class: ZkPassApiKey

Table of contents

Constructors

Properties

Methods

Constructors

constructor

Properties

apiKey

secretApiKey

Methods

getApiToken

Class: ZkPassClient

Hierarchy

Implements

Table of contents

Constructors

Properties

Methods

Constructors

constructor

Properties

zkPassServiceUrl

zkPassApiKey

zkVm

Methods

decryptJweToken

encryptDataToJweToken

generateZkPassProof

getApiToken

getQueryEngineVersionInfo

signDataToJwsToken

verifyJwsToken

verifyZkPassProofInternal

getFfiWrapper

getKeys

getEncryptionKey

getVerifyingKey

Class: ZkPassFfiR0

Implements

Table of contents

Constructors

Properties

Methods

Constructors

constructor

[tag: `string]`: